Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.mft
File: 1kBlpUFdmUI5AUXyJHkB2TZFidc.mft (raw, json)
Hash identifier: PMvOZcNYuLn1mz5a9yvBfwlTrefEqMdZMS0jxXW6X/Y=
Subject key identifier: 14:C8:50:6E:64:E2:FF:4F:00:EA:54:DC:4E:EF:84:79:90:10:4C:84
Authority key identifier: D6:40:65:A5:41:5D:99:42:39:01:45:F2:24:79:01:D9:36:45:89:D7
Certificate issuer: /CN=d64065a5415d9942390145f2247901d9364589d7
Certificate serial: 0197D7AC5371B83A545E7DE9B8C53B40E649
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1kBlpUFdmUI5AUXyJHkB2TZFidc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.mft
Manifest number: 0A9A
Signing time: Fri 04 Jul 2025 23:01:24 +0000
Manifest this update: Fri 04 Jul 2025 23:01:24 +0000
Manifest next update: Sat 05 Jul 2025 23:01:24 +0000
Files and hashes: 1: 1kBlpUFdmUI5AUXyJHkB2TZFidc.crl (hash: rZfcE0+VnF9CCOIp6GQnVjH0jUkoo6kuxjLcfK+ETms=)
2: 6rPFWOjVfpn28_M8t16r5KAzkLA.roa (hash: wER3Gq8nSGCzekLgZFtgVD/F8/GF6EezM87XvHZecI4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.mft
rsync://rpki.ripe.net/repository/DEFAULT/1kBlpUFdmUI5AUXyJHkB2TZFidc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 23:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d7:ac:53:71:b8:3a:54:5e:7d:e9:b8:c5:3b:40:e6:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d64065a5415d9942390145f2247901d9364589d7
Validity
Not Before: Jul 4 23:01:24 2025 GMT
Not After : Jul 5 23:01:24 2025 GMT
Subject: CN=14c8506e64e2ff4f00ea54dc4eef847990104c84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:28:4c:ff:29:89:28:19:74:51:57:44:d6:85:
bb:84:7a:ed:3d:25:ff:6d:77:43:3e:15:66:56:57:
03:66:76:03:3e:a3:62:b7:39:ad:d7:10:2b:36:ce:
79:03:d1:2a:75:1d:28:a8:8a:4e:ab:d9:27:a9:75:
37:6c:79:ed:fd:3d:26:f2:fe:be:b4:06:8f:c1:85:
a6:b4:43:73:64:47:80:e0:85:f5:43:77:09:b8:2f:
a1:cc:98:d6:72:2a:18:af:41:6c:2f:d3:2d:11:9d:
ba:ee:45:d7:52:9f:ff:9b:5a:8b:65:78:98:88:61:
66:07:d5:36:13:37:25:4e:ce:2b:26:7f:6e:07:55:
62:a8:bf:14:49:67:bd:2d:ae:2e:60:a4:7b:13:41:
63:0e:15:6f:2c:31:fe:34:b4:62:2d:04:f8:eb:ab:
4b:a7:4a:92:85:2b:e0:92:91:9e:09:c2:b6:52:8a:
dd:3f:10:8b:13:ba:f8:28:dd:1c:2a:0b:7b:58:44:
a3:4a:02:5e:a0:10:db:b7:82:1a:75:a8:2f:66:6f:
fc:ed:d9:5b:94:8c:2e:be:b4:b4:00:eb:06:ec:eb:
a6:7b:84:c1:b5:61:e1:13:b0:e6:cb:1f:61:35:69:
27:c8:4b:a9:98:d9:d8:bf:52:8c:4d:4c:71:54:f2:
31:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:C8:50:6E:64:E2:FF:4F:00:EA:54:DC:4E:EF:84:79:90:10:4C:84
X509v3 Authority Key Identifier:
keyid:D6:40:65:A5:41:5D:99:42:39:01:45:F2:24:79:01:D9:36:45:89:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1kBlpUFdmUI5AUXyJHkB2TZFidc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:ba:1e:02:21:3c:ac:32:5b:54:cf:b3:14:bc:d1:8f:b2:fa:
73:19:0d:81:4c:64:1e:5a:4d:89:16:4b:21:cc:3c:a8:82:03:
59:5a:7f:df:22:73:62:a0:c6:90:6f:c8:7c:33:d3:c9:c8:eb:
8a:b3:04:a7:d2:bb:05:fe:f1:be:ec:4c:d1:71:dd:8d:9c:9d:
27:44:e2:09:dc:19:58:f6:35:55:90:f1:a8:59:ad:9d:42:8c:
bb:56:43:16:fe:26:bb:89:c8:8a:99:a9:9c:81:01:51:b1:81:
c7:cb:a5:29:b7:f9:ad:56:dd:11:25:08:20:dc:73:73:f5:21:
d2:34:b0:8b:8a:6d:36:a4:b2:f6:4a:52:ef:75:2a:8e:5a:0d:
b8:6d:1c:f8:ba:21:f4:75:e1:22:9d:df:89:d5:ed:2b:8e:27:
33:23:b7:37:b8:c5:7c:c4:88:0e:79:c5:22:01:8d:2a:48:8c:
e7:f9:d4:a9:c8:ac:b4:f4:a2:09:41:64:9c:9d:f4:ae:22:83:
92:ff:ed:9a:c6:b5:a4:57:e1:fb:e0:2d:7b:54:91:23:18:06:
01:9c:56:6a:bf:f0:95:97:6e:8a:5b:7a:4b:ca:1c:db:fb:0d:
e5:1d:6c:48:e1:a7:4a:2c:56:30:2a:db:cd:67:46:3f:dd:c2:
ae:b2:19:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 5 04:33:48 2025 by rpki-client